> [...]
> Changes now are because the "security considerations" in 2003 were very
> very lax.
My comment was not addressing any Internet protocols. (My early IT days
where influenced by ITU-standards where (as opposed to the respective
Internet ["Sxxx"="simple"] standards) addressing security regularly and
inherently.) So, yes, it's good if Internet is now addressing security
seriously and regularly. Nonetheless "Security" and "Data Privacy" are
_generally_ used as excuse _everywhere_ - which was my point.[*]
Janis
[*] Current example: I requested to know a public server IP-address from
my ISP. They replied I have to send an [unprotected] email with my [data
privacy relevant] IDs to them to be able to give me that information. In
other words, they forced my to compromise my data privacy while claiming
that this would be for data privacy reasons. There's countless examples
like that.